Package: lxc Version: 1:1.0.6-6+deb8u1.1 Severity: normal Tags: patch Dear Maintainer,
lxc-clone does not correctly copy the extended attributes which includes caps. This causes problems for executables such as ping which can not be run as a normal user without the apporpiate caps. I've submitted a patch upstream which has been merged, this patch resolves the issue in Debian Jessie. -- System Information: Debian Release: 8.1 APT prefers stable APT policy: (990, 'stable'), (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages lxc depends on: ii init-system-helpers 1.22 ii libapparmor1 2.9.0-3 ii libc6 2.19-18 ii libcap2 1:2.24-8 ii libseccomp2 2.1.1-1 ii libselinux1 2.3-2 ii multiarch-support 2.19-18 ii python3 3.4.2-2 Versions of packages lxc recommends: ii debootstrap 1.0.67 ii openssl 1.0.1k-3+deb8u1 ii rsync 3.1.1-3 Versions of packages lxc suggests: pn lua5.2 <none> -- Configuration Files: /etc/lxc/default.conf changed [not included] -- no debconf information
Description: Clone Caps Fix Fixes an issue where caps are missing on containers that are cloned from other containers. For example this prevents ping from running as a regular user. . lxc (1:1.0.6-6+deb8u1.1) UNRELEASED; urgency=medium . * Non-maintainer upload. * local rleblanc Author: Robert LeBlanc <rdlebl...@leblanc-pc.bluehost.com> --- The information above should follow the Patch Tagging Guidelines, please checkout http://dep.debian.net/deps/dep3/ to learn about the format. Here are templates for supplementary fields that you might want to add: Origin: <vendor|upstream|other>, <url of original patch> Bug: <url in upstream bugtracker> Bug-Debian: https://bugs.debian.org/<bugnumber> Bug-Ubuntu: https://launchpad.net/bugs/<bugnumber> Forwarded: <no|not-needed|url proving that it has been forwarded> Reviewed-By: <name and email of someone who approved the patch> Last-Update: <YYYY-MM-DD> --- lxc-1.0.6.orig/src/lxc/bdev.c +++ lxc-1.0.6/src/lxc/bdev.c @@ -93,7 +93,7 @@ static int do_rsync(const char *src, con s[l-2] = '/'; s[l-1] = '\0'; - execlp("rsync", "rsync", "-a", s, dest, (char *)NULL); + execlp("rsync", "rsync", "-aHX", s, dest, (char *)NULL); exit(1); }
